OpenBSD src changes summary for 2016-11-29 ==========================================
distrib/sets lib/libcrypto lib/libpcap lib/libssl share/man sys/arch/alpha/conf sys/arch/amd64/conf sys/arch/armv7/conf sys/arch/hppa/conf sys/arch/i386/conf sys/arch/landisk/conf sys/arch/loongson/conf sys/arch/luna88k/conf sys/arch/macppc/conf sys/arch/octeon/conf sys/arch/sgi/conf sys/arch/sgi/dev sys/arch/sgi/hpc sys/arch/socppc/conf sys/arch/sparc64/conf sys/conf sys/dev/ic sys/dev/pci sys/dev/pv sys/dev/usb sys/kern sys/net sys/netinet usr.bin/ssh usr.bin/tmux usr.sbin/arp usr.sbin/ndp usr.sbin/spamdb usr.sbin/switchd usr.sbin/syspatch usr.sbin/user usr.sbin/ypldap == distrib =========================================================== 01/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib sets ~ lists/comp/mi > sync (deraadt@) ~ lists/comp/mi > sync (deraadt@) == lib =============================================================== 02/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/lib libcrypto - man/RAND_cleanup.3 ~ man/Makefile ~ man/RAND_add.3 ~ man/RAND_set_rand_method.3 > No text remains from OpenSSL, so use the standard OpenBSD license. > Mention the true author (Miod 2014). > Merge the useless page RAND_cleanup(3) into RAND_add(3). > Fix the return type of RAND_set_rand_method(3). > Mention the constant return values. (schwarze@) ~ man/RAND_bytes.3 > Add Copyright and license. > Add deprecation notice. > Delete useless cross references. (schwarze@) ~ man/RAND_load_file.3 > Add Copyright and license. > Adjust RETURN VALUES to match reality. > Delete the useless SEE ALSO section. (schwarze@) ~ man/CRYPTO_set_ex_data.3 ~ man/EVP_PKEY_set1_RSA.3 ~ man/OPENSSL_malloc.3 ~ man/PEM_read.3 ~ man/PEM_read_bio_PrivateKey.3 > minor cleanup; (jmc@) ~ man/RC4.3 ~ man/RIPEMD160.3 > Copyright and license (schwarze@) ~ man/RSA_check_key.3 ~ man/RSA_size.3 > Add Copyright, license, and very minor improvements from OpenSSL. > (schwarze@) ~ man/RSA_new.3 > Add Copyright and license. > Mention that RSA_free(3) accepts NULL. (schwarze@) ~ man/RSA_sign.3 > Add Copyright and license. > Merge various improvements from OpenSSL: > Clarify a reference to a standard. > Stop advertising ancient hash functions. > Remove incorrect statements about error return values. > Delete a cross reference to the non-existent page objects(3). (schwarze@) ~ man/RSA_blinding_on.3 ~ man/RSA_generate_key.3 ~ man/RSA_get_ex_new_index.3 ~ man/RSA_padding_add_PKCS1_type_1.3 ~ man/RSA_print.3 ~ man/RSA_private_encrypt.3 ~ man/RSA_public_encrypt.3 ~ man/RSA_set_method.3 ~ man/RSA_sign_ASN1_OCTET_STRING.3 > Copyright and license (schwarze@) ~ man/SHA1.3 > Add Copyright and license. > Merge SHA2 documentation from OpenSSL. > Fix the data type of the "n" argument of SHA1(3) > and the return type of SHA1_Update(3). > Merge a note about thread safety from OpenSSL. > We have two competing implementations of SHA2 in base: > in lib/libc/hash and in lib/libcrypto. > Both are now documented in their proper manual page. (schwarze@) ~ man/SMIME_read_PKCS7.3 ~ man/SMIME_write_PKCS7.3 > Copyright and license (schwarze@) ~ man/Makefile ~ man/OPENSSL_malloc.3 + man/CRYPTO_get_mem_functions.3 + man/OPENSSL_cleanse.3 > seperate these descriptions into seperate files to reduce confusion. > discussed with jsing > ok schwarze (deraadt@) ~ man/CRYPTO_get_mem_functions.3 ~ man/OPENSSL_cleanse.3 ~ man/OPENSSL_malloc.3 > tweak previous; (jmc@) libpcap ~ nametoaddr.c ~ shlib_version > Stop exporting the eproto_db array, export a pointer to it instead. > tcpdump directly uses eproto_db even though it is not part of the > libpcap API. This means that we can't freely add members to this array, > else ld.so complains about size mismatches. Keep the data in a static > array instead and make it usable by tcpdump through a pointer whose size > won't change in the future. A minor bump is enough here for ld.so to > stop complaining. > While here, mark _eproto_db and llc_db as const, as they are meant to > be. > Suggested by and ok deraadt@ (jca@) libssl ~ man/SSL_CIPHER_get_name.3 > Add Copyright and license. > SSLv2 and export ciphers are no longer supported, delete related text. > Sync SSL_CIPHER_description(3) return values with the source code. > Wording simplifications from OpenSSL. > Delete empty RETURN VALUES section. (schwarze@) ~ man/SSL_COMP_add_compression_method.3 > Replace all of the text by a deprecation notice: > LibreSSL was decompressed long ago. > Mention SSL_COMP_get_compression_methods(3) which is both available > in our public interface and documented by OpenSSL. (schwarze@) == share ============================================================= 03/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/share man ~ man4/options.4 ~ man8/crash.8 > Some tweaks reflecting that DEBUG=-g is the default for building kernels. > With jmc@ (mpi@) == sys =============================================================== 04/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys arch/alpha/conf ~ Makefile.alpha > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) arch/amd64/conf ~ Makefile.amd64 > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) arch/armv7/conf ~ Makefile.armv7 > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) arch/hppa/conf ~ Makefile.hppa > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) arch/i386/conf ~ Makefile.i386 > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) arch/landisk/conf ~ Makefile.landisk > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) arch/loongson/conf ~ Makefile.loongson > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) arch/luna88k/conf ~ Makefile.luna88k > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) arch/macppc/conf ~ Makefile.macppc > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) arch/octeon/conf ~ Makefile.octeon > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) arch/sgi/conf ~ Makefile.sgi > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) arch/sgi/dev ~ if_iec.c > m_free() and m_freem() test for NULL. Simplify callers which had their own > NULL tests. > ok mpi@ (jsg@) arch/sgi/hpc ~ if_sq.c > m_free() and m_freem() test for NULL. Simplify callers which had their own > NULL tests. > ok mpi@ (jsg@) arch/socppc/conf ~ Makefile.socppc > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) arch/sparc64/conf ~ Makefile.sparc64 > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) conf ~ GENERIC > Build kernel with DEBUG=-g by default. > This will allow us to extract type informations from DWARF2 sections. It > also makes developer life easier as debug information are now included in > every object. > Resulting kernels will be stripped using strip(1) instead of ld(1). > Kernel build time increases by approximately 10%. However it is still > possible to disable this by defining DEBUG="". > ok kettenis@, bluhm@, natano@, jasper@, reyk@, deraadt@ (mpi@) dev/ic ~ ar5008.c ~ ar9003.c ~ dwc_gmac.c ~ pgt.c > m_free() and m_freem() test for NULL. Simplify callers which had their own > NULL tests. > ok mpi@ (jsg@) dev/pci ~ hifn7751.c ~ if_alc.c ~ if_ixgb.c ~ if_jme.c ~ if_nfe.c ~ if_pcn.c ~ if_stge.c ~ if_xge.c > m_free() and m_freem() test for NULL. Simplify callers which had their own > NULL tests. > ok mpi@ (jsg@) dev/pv ~ xenstore.c > Replace the hand-rolled semaphore with a read-write lock > This was sitting in my tree for many a month and since the introduction > of interrupt threads, the interrupt vs. process context interlock became > irrelevant. Taking uncontended write locks while "cold" doesn't look > like a big deal as well. (mikeb@) ~ xen.c ~ xenstore.c ~ xenvar.h > Don't expose the xen_softc pointer in the XenStore transaction struct > (mikeb@) ~ if_xnf.c ~ xen.c ~ xenstore.c ~ xenvar.h > Stop exposing xen_softc to PV devices directly (mikeb@) dev/usb ~ if_athn_usb.c > m_free() and m_freem() test for NULL. Simplify callers which had their own > NULL tests. > ok mpi@ (jsg@) kern ~ uipc_mbuf.c ~ uipc_socket.c ~ uipc_syscalls.c ~ uipc_usrreq.c > m_free() and m_freem() test for NULL. Simplify callers which had their own > NULL tests. > ok mpi@ (jsg@) net ~ if_vether.c ~ if_vxlan.c ~ if_pair.c > For virtual Ethernet drivers that don't have a technical limit of the > hardmtu, pick a value of 65435 that leaves space for some > encapsulation and almost a complete max-IP packet. After some > discussion we picked this arbitrary value. > OK dlg@ (reyk@) ~ switchofp.c > Remove debugging code that was always enabled and printed parsed > OpenFlow packets: the new DLT_OPENFLOW bpf methods allows to monitor > the communication with a switch(4) device with tcpdump now. The > remaining debugging messages aren't compiled without DEBUG now. On > amd64, this shrinks the switchofp.o object by about 10k by default and > about 8k with DEBUG enabled. > OK rzalamena@ (reyk@) ~ pfkey.c ~ route.c ~ rtsock.c > m_free() and m_freem() test for NULL. Simplify callers which had their own > NULL tests. > ok mpi@ (jsg@) netinet ~ if_ether.h > For virtual Ethernet drivers that don't have a technical limit of the > hardmtu, pick a value of 65435 that leaves space for some > encapsulation and almost a complete max-IP packet. After some > discussion we picked this arbitrary value. > OK dlg@ (reyk@) ~ ip_mroute.c > m_free() and m_freem() test for NULL. Simplify callers which had their own > NULL tests. > ok mpi@ (jsg@) ~ ip_mroute.c ~ ip_mroute.h > Kill unused 'struct route'. (mpi@) == usr.bin =========================================================== 05/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin ssh ~ sshd.c ~ sshpty.c ~ sshpty.h > Factor out code to disconnect from controlling terminal into its own > function. ok djm@ (dtucker@) tmux ~ cmd-send-keys.c ~ tmux.1 > Make send -N work for all keys, not just in copy mode. From Artem Fokin. > (nicm@) == usr.sbin ========================================================== 06/06 == http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin arp ~ arp.c > Tweak output to keep it aligned when interfaces with big names, like > vether0 are used. > ok jca@, deraadt@ (mpi@) ndp ~ ndp.c > Tweak output to keep it aligned when interfaces with big names, like > vether0 are used. > ok jca@, deraadt@ (mpi@) spamdb ~ spamdb.c > When action == 0 (spamdb(8) without arguments) it only reads the DB so it > only > needs to pledge for "rpath" and for all other cases since it needs to write > as > well then give it "rpath wpath". > "seems right" deraadt@ (mestre@) switchd ~ switchd.8 > article fix; from rob pierce (jmc@) syspatch ~ syspatch.8 > Document the fact that *for now* syspatch only works on official releases > and > will always sync and apply all patches regardless of the installed sets. > (ajacoutot@) user ~ group.8 ~ groupadd.8 ~ groupdel.8 ~ groupinfo.8 ~ groupmod.8 ~ main.c ~ user.8 ~ user.c ~ useradd.8 ~ userdel.8 ~ userinfo.8 ~ usermgmt.h ~ usermod.8 > Alistair Crooks rescinded the advertising clause of his user(8) > license in 2005 in NetBSD. > https://mail-index.netbsd.org/source-changes/2005/11/25/0002.html (jsg@) ~ user.c > Correct a bit test introduced in user.c rev 1.111 that made it impossible > to set a password hash with usermod if an additional flag was specified. > ok mestre@ tom@ jung@ (jsg@) ~ user.c > remove all the (void) casts which are irrelevant. The remaining ones > should be fixed to do error checks. > ok jsg (deraadt@) ypldap ~ ldapclient.c ~ yp.c ~ ypldap.c ~ ypldap_dns.c > Use memset(3) instead of bzero(3) > OK deraadt@ (mestre@) =============================================================================== _______________________________________________ odc mailing list [email protected] http://www.squish.net/mailman/listinfo/odc
